45 matches found
The vulnerability of the Preferences component of the Oracle CRM Technical Foundation system, which allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.
The vulnerability of the Preferences component of the Oracle CRM Technical Foundation system relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information or to modify, add, or delete...
Unspecified Vulnerability in Oracle Customer Management and Segmentation Foundation (CNVD-2020-44081)
Oracle Customer Management and Segmentation Foundation is a retail customer management product. An unspecified vulnerability exists in the Security component of Oracle Customer Management and Segmentation Foundation. An attacker could exploit the vulnerability to compromise confidentiality and...
CVE-2020-2873
Vulnerability in the Oracle Customer Interaction History product of Oracle E-Business Suite component: Outcome-Result. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
CVE-2020-2887
CVE-2020-2887 affects Oracle E-Business Suite, Oracle Customer Interaction History (Outcome-Result) and is exploitable remotely over HTTP. Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.9. The vulnerability allows an unauthenticated attacker with network access to perform unauthorized update...
CVE-2018-3189
Vulnerability in the Oracle Customer Interaction History component of Oracle E-Business Suite subcomponent: Outcome-Result. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...
Vulnerability in Oracle E-Business Suite
Oracle E-Business Suite E-Business Suite is a fully integrated set of Oracle's global business management software. Oracle Customer Intelligence is one of the Web-based customer information viewer, customer data analyzer and customer performance monitor components. A security vulnerability exists...
CVE-2017-3550
CVE-2017-3550 affects Oracle E-Business Suite, specifically the Customer Interaction History component (subcomponent: Admin Console). Affected versions are 12.1.1, 12.1.2 and 12.1.3. The vulnerability is described as easily exploitable and allows an unauthenticated attacker with network access vi...
CVE-2017-3359
Vulnerability in the Oracle Customer Intelligence component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...
Buffer overflow
Vulnerability in the Oracle Customer Intelligence component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...
Buffer overflow
Vulnerability in the Oracle Customer Intelligence component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...
CVE-2017-3360
CVE-2017-3360 affects Oracle E-Business Suite — Oracle Customer Intelligence UI (versions 12.1.1/12.1.2/12.1.3). An unauthenticated attacker with network access via HTTP can compromise Oracle Customer Intelligence, with attacks requiring user interaction and potentially granting unauthorized acce...
CVE-2017-3441
Vulnerability in the Oracle Customer Interaction History component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...
CVE-2016-3512
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Function Security...
CVE-2016-0560
Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0545,...
CVE-2016-0552
Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0545,...
CVE-2016-0551
Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0545,...
CVE-2016-0545
Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0551,...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-0545,...
CVE-2016-0551
Technical details for CVE-2016-0551 are not publicly available in the provided documents. No concrete affected product/version/impact is described here. Monitor for updates from official advisories.
Oracle E-Business Multiple Vulnerabilities (January 2015 CPU)
The version of Oracle E-Business installed on the remote host is missing the January 2015 Oracle Critical Patch Update CPU. It is, therefore, affected by vulnerabilities in the following components : - Oracle Application Object Library - Oracle Applications DBA - Oracle Applications DBA - Oracle...